Dev tools for the
independent builder.

Free, open-source tools for developers who ship solo. Tool-agnostic. Local-first. No accounts. MIT licensed.

A ronin forging code at an anvil

Tools

BudgetClaw

v1.2.0

Local spend monitor for Claude Code. Tracks cost per project and git branch, warns you before a cap, and kills the process when you blow past it.

  • Per-project, per-branch budget caps (daily / weekly / monthly)
  • Phone alerts via ntfy -- install the app, subscribe to a topic, run budgetclaw alerts setup
  • SIGTERM on breach + lockfile that catches silent relaunches
  • Point-in-time pricing from the open ai-price-index dataset (CC BY 4.0), embedded at build time so it stays fully offline and prices each event at the rate in effect when it ran
  • Optional budgetclaw sync pushes aggregate spend rollups to a Goei dashboard. Only dollar and token totals leave the machine, never prompts or keys.
  • Zero keys. Zero prompts. Reads local logs only.
  • Single Go binary, 5 MB, no runtime, no account
$ budgetclaw status

PROJECT     BRANCH        TODAY    WEEK
myapp       main          $4.85    $28.30
myapp       feature/auth  $1.20    $3.20
side-proj   main          $0.00    $0.50
TOTAL                     $6.05    $32.00

$ budgetclaw limit list

#  PROJECT  PERIOD  CAP      ACTION
1  *        daily   $10.00   warn
2  myapp    daily   $5.00    kill
Goei beta

Your AI cost bodyguard. A web dashboard for where your AI money goes, per project, branch, and model. A zero-key local track reads what Claude Code already writes on your machine; an optional billed track adds Anthropic and ElevenLabs.

  • Where your Claude Code money goes, per project, branch, and model
  • Zero-key local track, fed by the open-source budgetclaw CLI
  • Billed vs usage value for Pro and Max subscribers
  • Budget alerts via phone push, webhooks, and RSS
Goei AI Cost Dashboard

Anthropic

Claude Opus 4, Sonnet 4

$412.80

this month

ElevenLabs

3,205 / 10,000 characters

32%

of quota

More providers coming

OpenAI, Stability, ...

> /claude-code-cost:report

PROJECT     BRANCH        TODAY    WEEK     MONTH
myapp       main          $4.85    $28.30   $112.40
myapp       feature/auth  $1.20    $3.20    $3.20
side-proj   main          $0.00    $0.50    $14.10
TOTAL                     $6.05    $32.00   $129.70

claude-code-cost

v1.1.0 Claude Code plugin

The zero-install way to see your Claude Code spend. Install it inside Claude Code, then run /claude-code-cost:report for spend per project and git branch, or :by-day / :by-week / :by-month over time. No binary, no account.

  • Installs inside Claude Code through the plugin system. No binary to download.
  • /claude-code-cost:report shows spend per project and git branch; :by-day, :by-week, :by-month, and :by-project break it down over time. Every command takes an optional substring filter
  • Point-in-time pricing from the open ai-price-index dataset, bundled so it stays fully offline
  • Zero keys. Zero prompts. Reads local session logs only.
  • Uses BudgetClaw automatically when it is installed, for budget caps and a persistent history

Hanko

v0.2.1

Validate Claude Code plugin manifests before submission. Catches reserved marketplace names, duplicate hooks declarations, path traversal, and the schema errors the official validator reports opaquely. Go binary, GitHub Action, zero network calls.

判子 · the personal seal stamped on official Japanese documents.

Tsuba

v0.2.1

Scaffold marketplace-ready Claude Code skills and plugins in seconds. Every generated plugin ships with a correct plugin.json, a sample skill, LICENSE, and README, and passes hanko validation on the first run.

· the katana guard that lets a swordsman hand the blade off safely.

Akashi

v0.3.0

Verify a Model Context Protocol server is alive and conformant, keyless. Probes the registry, GitHub, npm, PyPI, and a capability-only MCP initialize handshake, then reports healthy, degraded, or dead and hands you an embeddable verified badge.

· the proof or certificate that something is genuine.

Cursor Plugins

Framework-specific plugins for Cursor. Verified rules, migration skills, and anti-pattern detection -- so the LLM generates code that actually works with the latest framework versions.

Tailwind v4

v1.0.2

Prevents v3 hallucinations. 5 rule files, migration skill, validation skill, and a review subagent.

  • Anti-pattern detection for 12 common AI mistakes
  • /tw-migrate -- v3 to v4 project migration
  • /tw-validate -- version mixing detector

Django

v1.0.2

Django 5.x + DRF patterns. N+1 query prevention, model scaffolding, settings management, and 14 anti-pattern rules.

  • N+1 query detection as a first-class rule
  • /django-model -- full vertical slice scaffold
  • /django-validate -- project anti-pattern audit

Rails 8

v1.0.2

Solid Stack, Hotwire, params.expect, built-in auth, Kamal 2. Stops Cursor from generating Rails 7 patterns.

  • Hotwire decision tree: Frames vs Streams vs Stimulus
  • /rails-auth -- built-in auth, no Devise
  • /rails-validate -- Rails 7 pattern detector

FastAPI

v1.0.2

Pydantic v2 migration, async event loop safety, SQLAlchemy patterns, and 13 anti-pattern rules for FastAPI.

  • Complete Pydantic v1-to-v2 migration rules
  • /fastapi-endpoint -- async CRUD scaffold
  • /fastapi-validate -- v1 + async audit

Next.js 16

v2.0.0

Cache Components, proxy.ts (renamed from middleware), async-only request APIs, the Data Access Layer pattern, Server Actions with Zod + ownership re-check, three-layer auth. React 19.2.

  • 34 anti-patterns with BAD/CORRECT pairs (10 finely-globbed rules)
  • /nextjs-dal -- scaffold the Data Access Layer
  • /nextjs-migrate-v15-to-v16 -- codemod sequence

Go 1.22-1.24

v1.0.0

log/slog, errors.Is/As + %w wrapping, context-first APIs, http.ServeMux method routing (1.22+), range-over-func iterators (1.23).

  • Catches io/ioutil, interface{}, panic(err), time.After leaks
  • /go-modernize -- older Go to 1.24 migration
  • /go-error-wrap -- %v to %w + errors.Is conversion

Spring Boot 3.x

v1.0.0

jakarta.* imports, constructor injection, SecurityFilterChain, RestClient, records as DTOs, virtual threads, Testcontainers @ServiceConnection.

  • Catches 20 Boot 2-era patterns LLMs still produce
  • /spring-boot-migrate-to-3 -- 2.x to 3.x in 10 steps
  • /spring-boot-testcontainers -- @ServiceConnection wiring

ASP.NET Core 9

v1.0.0

Top-level Program.cs, Minimal APIs with TypedResults, IHttpClientFactory, EF Core AsNoTracking + projection, HybridCache, built-in OpenAPI.

  • Catches Startup.cs, sync-over-async, new HttpClient, Newtonsoft
  • /aspnet-migrate-to-9 -- older .NET to .NET 9
  • /aspnet-testing-setup -- WebApplicationFactory + Testcontainers

Kotlin + Compose

v1.0.0

Kotlin 2.x with the kotlin-compose plugin, StateFlow + collectAsStateWithLifecycle, Hilt, type-safe Navigation, Material 3, Version Catalogs.

  • Catches findViewById, GlobalScope, LiveData, Material 2, !!
  • /compose-migrate-views-to-compose -- per-screen migration
  • /compose-modernize-build -- libs.versions.toml + KSP + BOM

Terraform / OpenTofu

v1.0.0

for_each over count, remote backend + locking, moved/import/removed blocks, ephemeral resources, OpenTofu state encryption, OIDC for CI.

  • Catches 0.0.0.0/0 ingress, unpinned providers, plaintext secrets
  • /terraform-refactor-with-moved -- safe rename + restructure
  • /terraform-migrate-secrets -- HCL to Secrets Manager

Drizzle ORM

v1.0.0

Schema-first design, sql template tag for parameter binding, drizzle-zod pairing, Postgres RLS, Testcontainers transaction-rollback tests. Covers 0.45.x stable + 1.0-rc next.

  • Catches Prisma include/select leakage, removed casing API, SQL injection via execute
  • /drizzle-migrate-to-v1 -- 0.x to 1.0-rc with codemods
  • /drizzle-rls -- Postgres RLS scaffold + isolation tests

Playwright

v1.0.0

Semantic locators (getByRole over CSS), web-first assertions, test.extend fixtures, setup-project + storageState auth, sharded CI with merge-reports.

  • Catches text= selectors, page.$ ElementHandles, waitForTimeout, missing await on assertions
  • /playwright-setup-auth -- per-worker, multi-role, JWT bypass
  • /playwright-visual-regression -- macOS-vs-Linux baseline trap

Laravel 13

v1.0.0

Laravel 13.x on PHP 8.3+. The L11 skeleton (bootstrap/app.php, deleted Kernel.php), L12/L13 deltas (Carbon 3, casts() method, #[Scope], Cache::flexible, automatic eager loading, UUIDv7), Livewire 4 SFC without Volt, Inertia 3.1 deferred props, Pest 4 browser testing.

  • 37 anti-patterns with BAD/CORRECT pairs. Catches Repository pattern, $casts array, scopeXxx, wire:model.lazy, Carbon 2 calls, Volt-for-Livewire-4
  • Anti-Repository wedge with Otwell, Freek, Spatie citations
  • /laravel-migrate-v10-to-v13 -- Kernel.php to bootstrap, $casts to casts()

Vue 3.5 / Nuxt 4

v1.0.0

Vue 3.5.34 + Nuxt 4.4.5. Leads with the Vue 3.5 trio LLMs miss (useTemplateRef, useId, reactive props destructure) and the Nuxt 4 app/ srcDir layout. Pinia 3 setup stores, Vue Router 5, useAsyncData singleton-by-key + shallowRef defaults, server/api with method-suffixed handlers, VueUse 14, Vitest 4.

  • 38 anti-patterns with BAD/CORRECT pairs. Catches Options API in new code, ref(null) template refs, toRefs/withDefaults boilerplate, Vuex, module-scope ref SSR leaks, readBody in GET, store/ vs app/stores/
  • Pinned to Vue 3.5 + Nuxt 4. Canonical Cursor entries pre-date both releases.
  • /vue-nuxt-migrate-to-3-5-and-4 -- pages/components to app/, store/ to stores/, Vuex to Pinia 3

Get notified on new tools.

One email per launch. No spam. Unsubscribe anytime.

Frequently asked questions

What is RoninForge? +

A small collection of free, open-source developer tools for people shipping solo. Every tool is MIT licensed, runs locally, and works with the AI coding stack (Claude Code, Cursor). No accounts, no dashboards, no cloud lock-in.

Who is this for? +

Independent developers who ship without a team. People leaning hard on AI coding tools and wanting to keep control of cost, data, and process. Terminal-native, skeptical of vendor lock-in, happy to read source.

Why the name RoninForge? +

A ronin was a samurai without a lord. Shorthand here for working independently by choice, without a company behind you. The tools are built for that audience. The forge is where the work gets hammered out.

Is everything really free and open source? +

Yes. Every repo is MIT licensed. No paid tiers, no subscriptions, no waitlists. If a future tool needs hosted infrastructure that costs us money, it gets labeled clearly and stays opt-in. Nothing shipped today requires that.

Do the tools phone home or collect telemetry? +

No telemetry, no crash reports, no usage analytics in any CLI. The only network calls are ones you configure yourself, like your own ntfy topic for phone alerts. The source is auditable in an afternoon.

How does RoninForge make money then? +

Today, it doesn't. RoninForge exists to build a reputation first. Revenue comes later from a separate paid product built on top of this work, labeled clearly as such. The free tools stay free and MIT.

RoninForge builds free, open-source tools for developers who prefer to own their stack. Everything runs locally. Every repo is MIT licensed. No accounts, no tracking, no vendor lock-in.